2 matches found
CVE-2024-32849
The CVE-2024-32849 entry concerns Trend Micro Security 17.x (Consumer). A Privilege Escalation flaw exists in the coreServiceShell due to incorrect link resolution, enabling a local attacker to delete privileged Trend Micro files (including its own). Public sources (ZDI advisory ZDI-24-576 and JV...
CVE-2023-28929
CVE-2023-28929 affects Trend Micro Security (consumer editions) 2021–2023. The issue is a DLL hijacking flaw (CWE-427) where loading a malicious DLL via a vulnerable executable may allow arbitrary code execution or execution of a malicious program each time the executable starts. Affected product...